Cloud Security Engineer

This is a remote position.

Look4IT is looking for experienced Cloud Security Engineer.
 
Our client has been pushing the boundaries of technology for over 20 years, delivering the most innovative IT solutions for business. Through technological partnerships with companies like Microsoft, Google, AWS, Tableau, Mulesoft, and SAP, and by working in a follow-the-sun model (24/7/365), they provide top-level services quickly and efficiently, always focusing on the real needs of their customers. The combination of passion with the best IT specialists allows them to create the most innovative, tailor-made solutions. With over 120 satisfied corporate, public, and government clients worldwide, including regulated industries and mission-critical systems such as banking, pharmaceuticals, automotive, and aerospace, they continue to lead in technological innovation.
 

Responsibilities:

• Collaboratively, develop and improve the security features and engineering capabilities for the Cloud Platform (automatic deployment pipelines, secure controls and guardrails, abstraction layers to ease Cloud adoption, delegation capabilities to enable self-service functionality to end customers, etc.);
  
• Leverage every opportunity to use your coding skills to implement automated security solutions and avoid click ops;
  
• Drive through all stages of the software development lifecycle, from requirements gathering and discussions with the Product Owner/Customer to the implementation and deployment of the security features in production using CI/CD;
  
• Provide software security architecture and insight for propositions, product designs and service enhancements.;
  
• Lead efforts to implement security policies and remediation processes;
  
• Use standard security frameworks to perform gap analysis and work with the platform team and customers to their resolution;
  
• Collaborate with engineering teams to level up security across the platform.;
  
• Engage with the wider Security teams to continually evolve how we protect customers' data within the platform.;
  
• Help the team drive decisions around technologies, development patterns, automation framework and new approaches to ease the security adoption going forward.
  

Requirements

• 3+ years of experience in security;
  
• Hands-on experience with core AWS cloud services (networking, storage, DB and compute);
  
• Solid understanding of AWS security architecture design and ability to create reference implementations;
  
• Proven hands-on experience in developing and implementing security features at scale in multi-tenant platforms using AWS native security services like GuardDuty, Security Hub, etc;
  
• Familiarity with security frameworks and experience in performing technical gap analysis;
  
• Ability to deliver and improve automated security solutions;
  
• Strong knowledge of the software development lifecycle, including CI/CD to deploy security mechanisms;
  
• Working knowledge of Git, Terraform and Python and familiarity with Jenkins and Rundeck;
  
• Experience with agile methodologies;
  
• English B2/C1.
  

Nice to have:

• Familiarity with other clouds like GCP, Azure or Alicloud;
  
• Experience in data analysis and using insights to drive decision-making;
  
• Experience in reviewing code for quality and security compliance;
  
• Experience in performing penetration testing activities;
  
• Experience developing infrastructure as code that is fully tested: unit/functional/smoke tests using inspec/pytest or similar tooling.
  

Benefits

• Collaboration with a company that is a leader in technological innovation.
  
• The opportunity to work in a dynamic, international environment.
  
• Competitive salary and attractive working conditions.